com.floragunn.searchguard.authentication.backend.simple.SettingsBasedAuthenticationBackend.java Source code

Java tutorial

  1. HOME
  2. Java
  3. com.floragunn.searchguard.authentication.backend.simple.SettingsBasedAuthenticationBackend.java

Introduction

Here is the source code for com.floragunn.searchguard.authentication.backend.simple.SettingsBasedAuthenticationBackend.java

Source

/*
 * Copyright 2015 floragunn UG (haftungsbeschrnkt)
 * 
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * 
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 * 
 */

package com.floragunn.searchguard.authentication.backend.simple;

import java.util.Arrays;

import org.apache.commons.codec.digest.DigestUtils;
import org.elasticsearch.common.inject.Inject;
import org.elasticsearch.common.settings.Settings;

import com.floragunn.searchguard.authentication.AuthException;
import com.floragunn.searchguard.authentication.User;
import com.floragunn.searchguard.authentication.backend.NonCachingAuthenticationBackend;
import com.floragunn.searchguard.util.ConfigConstants;

public class SettingsBasedAuthenticationBackend implements NonCachingAuthenticationBackend {

    private final Settings settings;

    @Inject
    public SettingsBasedAuthenticationBackend(final Settings settings) {
        this.settings = settings;
    }

    @Override
    public User authenticate(final com.floragunn.searchguard.authentication.AuthCredentials authCreds)
            throws AuthException {
        final String user = authCreds.getUsername();
        final char[] password = authCreds.getPassword();
        authCreds.clear();

        String pass = settings.get(ConfigConstants.SEARCHGUARD_AUTHENTICATION_SETTINGSDB_USER + user, null);
        String digest = settings.get(ConfigConstants.SEARCHGUARD_AUTHENTICATION_SETTINGSDB_DIGEST, null);

        if (digest != null) {

            digest = digest.toLowerCase();

            switch (digest) {

            case "sha":
            case "sha1":
                pass = DigestUtils.sha1Hex(pass);
                break;
            case "sha256":
                pass = DigestUtils.sha256Hex(pass);
                break;
            case "sha384":
                pass = DigestUtils.sha384Hex(pass);
                break;
            case "sha512":
                pass = DigestUtils.sha512Hex(pass);
                break;

            default:
                pass = DigestUtils.md5Hex(pass);
                break;
            }

        }

        if (pass != null && Arrays.equals(pass.toCharArray(), password)) {
            return new User(user);
        }

        throw new AuthException("No user " + user + " or wrong password (digest: "
                + (digest == null ? "plain/none" : digest) + ")");
    }

}